$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json) Hash identifier: wPi91fQcpeA0IJWf198Qhp3BUlbux54Qj4H+Dq+eE0E= Subject key identifier: 41:CB:2C:54:62:3B:C7:F6:23:9E:FE:33:25:85:DE:46:24:A1:29:FB Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft Manifest number: 025F Signing time: Wed 17 Sep 2025 02:16:13 +0000 Manifest this update: Wed 17 Sep 2025 02:16:13 +0000 Manifest next update: Wed 24 Sep 2025 02:16:13 +0000 Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: heM14yHSOM5J5lUKGgfHtPjl3JUw77Ikyj6vfIqL2Lg=) 2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: sR0eTjFYTlKs7mzVHMIl7telIMsp7nYju6MlYaiMBkg=) 3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: 64gg/L8X7dQV3AAOAv3MN1klInujbmxMEcZ9X63m+I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA1BE, serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Validity Not Before: Sep 17 02:16:13 2025 GMT Not After : Sep 24 02:16:13 2025 GMT Subject: CN=68ca19ed-302f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b4:33:26:1e:e2:09:3a:22:7a:41:be:64:d8: b0:92:8b:79:86:0b:18:90:7e:82:fc:e5:30:08:3e: b2:3f:07:8e:6e:cc:02:5b:0b:6f:ab:9d:6c:6e:a2: 27:13:7c:25:4c:1a:6b:2c:8c:a0:ac:52:c1:ce:ed: 22:c1:5e:21:16:c3:fc:d4:94:7c:f8:a0:07:32:96: cc:d3:e7:ef:be:83:5b:1e:3d:91:c6:06:24:4d:74: 63:f7:50:9c:b4:53:ef:86:b1:0d:8f:5b:b6:cc:ec: 2a:72:a8:57:b9:57:da:dd:9d:d7:4a:c8:50:f6:f7: 43:49:e9:57:b4:f9:3d:8a:4b:0d:4f:4b:cb:ca:df: 7a:ab:ba:e7:bf:75:88:b2:2b:6f:1a:89:1b:25:48: 87:01:c9:42:d9:96:7a:46:c8:1b:f6:d8:23:c7:84: 3e:09:1e:5e:76:cf:02:d2:f8:bb:69:57:84:ad:89: 0a:8f:f4:89:74:73:d4:f6:06:f2:79:f5:aa:7b:63: d3:ff:82:4e:e9:61:e9:43:5d:36:44:c8:f2:fc:1b: d3:45:31:ae:07:4a:cd:03:59:c1:46:31:23:0d:aa: 4c:f4:fd:4f:1d:2a:eb:68:08:78:92:a3:8b:e1:0d: 25:c2:4b:b0:ec:7a:cd:0b:35:dc:7a:4a:75:16:27: e0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:CB:2C:54:62:3B:C7:F6:23:9E:FE:33:25:85:DE:46:24:A1:29:FB X509v3 Authority Key Identifier: keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:9b:41:90:a0:2c:50:be:4f:43:3f:16:85:ce:87:5a:9e:d7: 54:e5:b4:3c:9d:ed:ff:34:9a:3f:40:ab:60:7c:b8:d8:5c:9d: 9b:72:a8:20:83:43:8a:f9:f9:92:ac:b2:0b:1f:fb:9c:a6:82: ec:61:cf:47:b9:67:3e:1b:ec:a7:d8:fc:96:8a:e6:6f:b8:e7: ca:e1:62:e0:f2:a0:e7:bd:90:89:59:a2:87:81:23:5c:20:eb: 84:e5:eb:60:27:5a:53:7b:fd:82:88:2b:83:b2:81:ba:de:fc: 95:c3:5c:70:8b:eb:e2:47:e7:99:84:28:b8:cb:5f:c4:fd:3c: ec:f7:b9:21:71:f2:aa:80:b7:14:45:5d:63:02:98:22:49:6f: 1f:80:b4:1a:04:d0:f6:c7:90:c2:7a:b1:d6:fd:0b:93:af:da: 94:6f:5f:cb:27:47:6e:67:61:74:e7:5c:59:15:3e:74:83:9c: 98:68:8a:26:e2:31:33:03:24:55:0a:ec:3a:f2:43:fc:d1:e5: 2e:9c:33:1b:13:bb:70:13:59:54:5d:c8:b4:36:b1:2e:2f:16: fd:43:d7:5d:0e:1d:b9:e2:5a:6a:03:3a:07:4e:14:32:51:5f: ae:11:12:e2:cf:3f:de:a7:69:dd:ac:4c:14:75:5f:ed:79:50: 8a:3c:3c:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkExQkUxMTAvBgNVBAUTKDk1MjZBNjcyNDc4QUZBNzU0NDVEOEQwN0RDQzU3QzA1 ODk2NkVGRTIwHhcNMjUwOTE3MDIxNjEzWhcNMjUwOTI0MDIxNjEzWjAYMRYwFAYD VQQDEw02OGNhMTllZC0zMDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLQzJh7iCToiekG+ZNiwkot5hgsYkH6C/OUwCD6yPweObswCWwtvq51sbqIn E3wlTBprLIygrFLBzu0iwV4hFsP81JR8+KAHMpbM0+fvvoNbHj2RxgYkTXRj91Cc tFPvhrENj1u2zOwqcqhXuVfa3Z3XSshQ9vdDSelXtPk9iksNT0vLyt96q7rnv3WI sitvGokbJUiHAclC2ZZ6Rsgb9tgjx4Q+CR5eds8C0vi7aVeErYkKj/SJdHPU9gby efWqe2PT/4JO6WHpQ102RMjy/BvTRTGuB0rNA1nBRjEjDapM9P1PHSrraAh4kqOL 4Q0lwkuw7HrNCzXcekp1FifgPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHLLFRi O8f2I57+MyWF3kYkoSn7MB8GA1UdIwQYMBaAFJUmpnJHivp1RF2NB9zFfAWJZu/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTFCRS80MTY4RkY3NjJE MzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1uVkVYWTBIM01WOEJZbG03 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTYW1ja2VLLW5WRVhZMEgzTVY4QllsbTctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTFCRS80MTY4RkY3NjJEMzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1u VkVYWTBIM01WOEJZbG03LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAm0GQoCxQvk9DPxaFzodantdU5bQ8ne3/NJo/QKtgfLjYXJ2bcqgg g0OK+fmSrLILH/ucpoLsYc9HuWc+G+yn2PyWiuZvuOfK4WLg8qDnvZCJWaKHgSNc IOuE5etgJ1pTe/2CiCuDsoG63vyVw1xwi+viR+eZhCi4y1/E/Tzs97khcfKqgLcU RV1jApgiSW8fgLQaBND2x5DCerHW/QuTr9qUb1/LJ0duZ2F051xZFT50g5yYaIom 4jEzAyRVCuw68kP80eUunDMbE7twE1lUXci0NrEuLxb9Q9ddDh254lpqAzoHThQy UV+uERLizz/ep2ndrEwUdV/teVCKPDyY -----END CERTIFICATE-----Generated at Thu Sep 18 23:52:04 2025 by rpki-client